[Date Prev][Date Next] [Chronological] [Thread] [Top]

userPassword: {UNIX}uid [was: Authentication with UNIX username/password (ITS#212)]

I've committed changes based upon ST's submission...

Given entries:
	dn: cn=user,dc=foo
	objectclass: person
	cn: user
	userPassword: {UNIX}uid

and slapd will obtain the passwd entry getpwnam("uid") and
use crypt(3) to compare the supplied password with pw_passwd
field.  Also supports shadowed password files.

Enjoy!  Kurt

>Date: Sat, 26 Jun 1999 18:34:37 GMT
>From: Kurt@OpenLDAP.org
>To: openldap-its@OpenLDAP.org
>Subject: Re: Authentication with UNIX username/password  (ITS#212)
>Comment: OpenLDAP "openldap-bugs" Mailing List <http://www.OpenLDAP.org/>
>List-Archive: <http://www.openldap.org/lists/openldap-bugs>
>I've committed something similiar to -devel.  Uses "{UNIX}uid"
>instead of "{EXT}uid" as mechanism is Unix specific and EXT.
>Added detection of headers, routines, and pw_passwd field to
>Enjoy, Kurt
>At 05:35 PM 6/26/99 GMT, Kurt@OpenLDAP.org wrote:
>>This is a multi-part message in MIME format.
>>Content-Type: text/plain; charset=us-ascii
>>Content-Transfer-Encoding: 7bit
>>Should be public.
>>Content-Type: message/rfc822
>>Content-Transfer-Encoding: 7bit
>>Content-Disposition: inline
>>Return-Path: st-wong@cuhk.edu.hk
>>Received: from localhost (localhost [])
>>	by cantor.boolean.net (8.9.2/8.9.1) with ESMTP id RAA55867
>>	for <jitterbug-admin@OpenLDAP.org>; Sat, 26 Jun 1999 17:29:47 GMT
>>	(envelope-from st-wong@cuhk.edu.hk)
>>Date: Sat, 26 Jun 1999 17:29:47 GMT
>>From: st-wong@cuhk.edu.hk
>>Message-Id: <199906261729.RAA55867@cantor.boolean.net>
>>To: openldap-its@OpenLDAP.org
>>Subject: PRIVATE: Authentication with UNIX username/password  (ITS#212)
>>X-Loop: openldap-its@OpenLDAP.org
>>X-Mozilla-Status2: 00000000
>>Full_Name: ST Wong
>>Version: 1.2.3 release
>>OS: Sparc 2.6
>>URL: ftp://ftp.openldap.org/incoming/ST-Wong-990627.tar
>>Submission from: (NULL) (
>>I've made some minor changes to authenticate method using UNIX
>>either from local passwd files or other source stated in nsswitch.conf.  The
>>method can be used by changing the userPassword field to something like this:
>>userPassword: {EXT}username
>>where the password of "username" will be used for authentication.
>>For your information.
>>ST Wong